Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,003
Maven
5,000+
npm
4,732
NuGet
788
pip
4,341
Pub
12
RubyGems
987
Rust
1,137
Swift
50
Unreviewed advisories
All unreviewed
5,000+

2,092 advisories

Loading
Johnson Controls iSTAR Configuration Utility (ICU) has Stack-based Buffer Overflow vulnerability.... High Unreviewed
CVE-2025-26386 was published Jan 28, 2026
In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized... High Unreviewed
CVE-2026-24881 was published Jan 27, 2026
In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the... High Unreviewed
CVE-2026-24882 was published Jan 27, 2026
ASDA-Soft Stack-based Buffer Overflow Vulnerability High Unreviewed
CVE-2026-1361 was published Jan 27, 2026
A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function... Moderate Unreviewed
CVE-2025-9820 was published Jan 26, 2026
dataSIMS Avionics ARINC 664-1 version 4.5.3 contains a local buffer overflow vulnerability that... Moderate Unreviewed
CVE-2021-47881 was published Jan 23, 2026
ALGO 8180 IP Audio Alerter SIP INVITE Replaces Stack-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2026-0791 was published Jan 23, 2026
ALGO 8180 IP Audio Alerter SIP INVITE Alert-Info Stack-based Buffer Overflow Remote Code... High Unreviewed
CVE-2026-0792 was published Jan 23, 2026
Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv... Critical Unreviewed
CVE-2025-69764 was published Jan 22, 2026
Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the list parameter,... Critical Unreviewed
CVE-2025-69762 was published Jan 21, 2026
Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter... Critical Unreviewed
CVE-2025-69763 was published Jan 21, 2026
Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv... Critical Unreviewed
CVE-2025-69766 was published Jan 21, 2026
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the... High Unreviewed
CVE-2025-70644 was published Jan 21, 2026
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security parameter of the... High Unreviewed
CVE-2025-70646 was published Jan 21, 2026
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of... High Unreviewed
CVE-2025-70648 was published Jan 21, 2026
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the... High Unreviewed
CVE-2025-70651 was published Jan 21, 2026
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of... High Unreviewed
CVE-2025-70645 was published Jan 21, 2026
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of... High Unreviewed
CVE-2025-70650 was published Jan 21, 2026
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the timeZone parameter of... High Unreviewed
CVE-2025-70746 was published Jan 16, 2026
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security parameter of... High Unreviewed
CVE-2025-71020 was published Jan 16, 2026
Yenkee Hornet Gaming Mouse driver GM312Fltr.sys contains a buffer overrun vulnerability that... Moderate Unreviewed
CVE-2021-47789 was published Jan 16, 2026
A Stack-based Buffer Overflow vulnerability in the Packet Forwarding Engine (pfe) of Juniper... High Unreviewed
CVE-2026-21903 was published Jan 15, 2026
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the mac parameter of the... High Unreviewed
CVE-2025-70656 was published Jan 15, 2026
A stack overflow in the dump_ttxt_sample function of GPAC v2.4.0 allows attackers to cause a... High Unreviewed
CVE-2025-70307 was published Jan 15, 2026
A buffer overflow in the vobsub_get_subpic_duration() function of GPAC v2.4.0 allows attackers to... High Unreviewed
CVE-2025-70304 was published Jan 15, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database